CertsTopics Logo

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Fortinet NSE6_FAC-6.1 Dumps

Page: 1 / 2
Total 30 questions
Get NSE6_FAC-6.1 Full Access Download NSE6_FAC-6.1 PDF

Fortinet NSE 6 - FortiAuthenticator 6.1 Questions and Answers

Question 1

Which two types of digital certificates can you create in Fortiauthenticator? (Choose two)

Options:

A.

Usercertificate

B.

Organization validation certificate

C.

Third-party root certificate

D.

Local service certificate

Question 2

Which option correctly describes an SP-initiated SSO SAML packet flow for a host without a SAML assertion?

Options:

A.

Service provider contacts idendity provider, idendity provider validates principal for service provider, service provider establishes communication with principal

B.

Principal contacts idendity provider and is redirected to serviceprovider, principal establishes connection with service provider, service provider validates authentication with identify provider

C.

Principal contacts service provider, service provider redirects principal to idendity provider, after succesfull authentication identify provider redirects principal to service provider

D.

Principal contacts idendity provider and authenticates, identity provider relays principal to service provider after valid authentication

Question 3

A device or useridentity cannot be established transparently, such as with non-domain BYOD devices, and allow users to create their own credentialis.

In this case, which user idendity discovery method can Fortiauthenticator use?

Options:

A.

Syslog messaging or SAML IDP

B.

Kerberos-base authentication

C.

Radius accounting

D.

Portal authentication

Question 4

What are three key features of FortiAuthenticator? (Choose three)

Options:

A.

Identity management device

B.

Log server

C.

Certificate authority

D.

Portal services

E.

RSSO Server

Question 5

Which two statements about the self-service portal are true? (Choose two)

Options:

A.

Self-registration information can be sent to the user through email or SMS

B.

Realms can be used to configure which seld-registeredusers or groups can authenticate on the network

C.

Administrator approval is required for all self-registration

D.

Authenticating users must specify domain name along with username

Question 6

Which statement about the guest portal policies is true?

Options:

A.

Guest portal policies apply only to authentication requests coming from unknown RADIUS clients

B.

Guest portal policies can be used only for BYODs

C.

Conditions in the policy apply only to guest wireless users

D.

All conditions in the policy must match before a user is presented with the guest portal

Question 7

At a minimum, which two configurations are required to enable guest portal services on FortiAuthenticator? (Choose two)

Options:

A.

Configuring a portal policy

B.

Configuring at least on post-login service

C.

Configuring a RADIUS client

D.

Configuring an external authentication portal

Question 8

Refer to the exhibit.

Examine the screenshot shown in the exhibit.

Which two statements regarding the configuration are true? (Choose two)

Options:

A.

All guest accounts created using the account registration feature will be placed under the Guest_Portal_Users group

B.

All accounts registered through the guest portal must be validated through email

C.

Guest users must fill in all the fields on the registration form

D.

Guest user account will expire after eight hours

Question 9

Which EAP method is known as the outer authentication method?

Options:

A.

PEAP

B.

EAP-GTC

C.

EAP-TLS

D.

MSCHAPV2

Page: 1 / 2
Total 30 questions
Get NSE6_FAC-6.1 Full Access Download NSE6_FAC-6.1 PDF